wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 02:37:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

for clients only

Browse Source
This commit is contained in:
Anthony Hu
2023-12-07 14:05:33 -05:00
parent 3c5b402740
commit 9fda21748a
1 changed files with 18 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
src/internal.c
View File

@ -26130,13 +26130,16 @@ int SetCipherList(WOLFSSL_CTX* ctx, Suites* suites, const char* list)
}
#ifdef HAVE_RENEGOTIATION_INDICATION
if (suites->suiteSz > WOLFSSL_MAX_SUITE_SZ - 2) {
WOLFSSL_MSG("Too many ciphersuites");
return 0;
if (ctx->method->side == WOLFSSL_CLIENT_END) {
if (suites->suiteSz > WOLFSSL_MAX_SUITE_SZ - 2) {
WOLFSSL_MSG("Too many ciphersuites");
return 0;
}
suites->suites[suites->suiteSz] = CIPHER_BYTE;
suites->suites[suites->suiteSz+1] =
TLS_EMPTY_RENEGOTIATION_INFO_SCSV;
suites->suiteSz += 2;
}
suites->suites[suites->suiteSz] = CIPHER_BYTE;
suites->suites[suites->suiteSz+1] = TLS_EMPTY_RENEGOTIATION_INFO_SCSV;
suites->suiteSz += 2;
#endif
suites->setSuites = 1;
}
@ -26274,13 +26277,16 @@ int SetCipherListFromBytes(WOLFSSL_CTX* ctx, Suites* suites, const byte* list,
InitSuitesHashSigAlgo_ex2(suites->hashSigAlgo, haveSig, 1, keySz,
&suites->hashSigAlgoSz);
#ifdef HAVE_RENEGOTIATION_INDICATION
if (suites->suiteSz > WOLFSSL_MAX_SUITE_SZ - 2) {
WOLFSSL_MSG("Too many ciphersuites");
return 0;
if (ctx->method->side == WOLFSSL_CLIENT_END) {
if (suites->suiteSz > WOLFSSL_MAX_SUITE_SZ - 2) {
WOLFSSL_MSG("Too many ciphersuites");
return 0;
}
suites->suites[suites->suiteSz] = CIPHER_BYTE;
suites->suites[suites->suiteSz+1] =
TLS_EMPTY_RENEGOTIATION_INFO_SCSV;
suites->suiteSz += 2;
}
suites->suites[suites->suiteSz] = CIPHER_BYTE;
suites->suites[suites->suiteSz+1] = TLS_EMPTY_RENEGOTIATION_INFO_SCSV;
suites->suiteSz += 2;
#endif
suites->setSuites = 1;
}